CVE-2009-2409

MEDIUM

Description

The Network Security Services (NSS) library before 3.12.3, as used in Firefox; GnuTLS before 2.6.4 and 2.7.4; OpenSSL 0.9.8 through 0.9.8k; and other products support MD2 with X.509 certificates, which might allow remote attackers to spoof certificates by using MD2 design flaws to generate a hash collision in less than brute-force time. NOTE: the scope of this issue is currently limited because the amount of computation required is still large.

References

http://java.sun.com/j2se/1.5.0/ReleaseNotes.html

http://java.sun.com/javase/6/webnotes/6u17.html

http://lists.apple.com/archives/security-announce/2009/Nov/msg00000.html

http://secunia.com/advisories/36139

http://secunia.com/advisories/36157

http://secunia.com/advisories/36434

http://secunia.com/advisories/36669

http://secunia.com/advisories/36739

http://secunia.com/advisories/37386

http://secunia.com/advisories/42467

http://security.gentoo.org/glsa/glsa-200911-02.xml

http://security.gentoo.org/glsa/glsa-200912-01.xml

http://support.apple.com/kb/HT3937

http://www.debian.org/security/2009/dsa-1874

http://www.mandriva.com/security/advisories?name=MDVSA-2009:197

http://www.mandriva.com/security/advisories?name=MDVSA-2009:216

http://www.mandriva.com/security/advisories?name=MDVSA-2009:258

http://www.mandriva.com/security/advisories?name=MDVSA-2010:084

http://www.redhat.com/support/errata/RHSA-2009-1207.html

http://www.redhat.com/support/errata/RHSA-2009-1432.html

http://www.securityfocus.com/archive/1/515055/100/0/threaded

http://www.securitytracker.com/id?1022631

http://www.ubuntu.com/usn/usn-810-1

http://www.vmware.com/security/advisories/VMSA-2010-0019.html

http://www.vupen.com/english/advisories/2009/2085

http://www.vupen.com/english/advisories/2009/3184

http://www.vupen.com/english/advisories/2010/3126

https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2009-2409

https://lists.balabit.com/pipermail/syslog-ng-announce/2011-January/000101.html

https://lists.balabit.com/pipermail/syslog-ng-announce/2011-January/000102.html

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10763

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6631

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A7155

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A8594

https://rhn.redhat.com/errata/RHSA-2010-0095.html

https://usn.ubuntu.com/810-2/

https://www.debian.org/security/2009/dsa-1888

Details

Source: MITRE

Published: 2009-07-30

Updated: 2018-10-10

Type: CWE-310

Risk Information

CVSS v2.0

Base Score: 5.1

Vector: AV:N/AC:H/Au:N/C:P/I:P/A:P

Impact Score: 6.4

Exploitability Score: 4.9

Severity: MEDIUM

Vulnerable Software

Configuration 1

AND

OR

cpe:2.3:a:mozilla:firefox:*:*:*:*:*:*:*:*

OR

cpe:2.3:a:mozilla:firefox:*:*:*:*:*:*:*:*

cpe:2.3:a:mozilla:nss:3.0:*:*:*:*:*:*:*

cpe:2.3:a:mozilla:nss:3.2:*:*:*:*:*:*:*

cpe:2.3:a:mozilla:nss:3.2.1:*:*:*:*:*:*:*

cpe:2.3:a:mozilla:nss:3.3:*:*:*:*:*:*:*

cpe:2.3:a:mozilla:nss:3.3.1:*:*:*:*:*:*:*

cpe:2.3:a:mozilla:nss:3.3.2:*:*:*:*:*:*:*

cpe:2.3:a:mozilla:nss:3.4:*:*:*:*:*:*:*

cpe:2.3:a:mozilla:nss:3.4.1:*:*:*:*:*:*:*

cpe:2.3:a:mozilla:nss:3.4.2:*:*:*:*:*:*:*

cpe:2.3:a:mozilla:nss:3.4.3:*:*:*:*:*:*:*

cpe:2.3:a:mozilla:nss:3.5:*:*:*:*:*:*:*

cpe:2.3:a:mozilla:nss:3.6:*:*:*:*:*:*:*

cpe:2.3:a:mozilla:nss:3.6.1:*:*:*:*:*:*:*

cpe:2.3:a:mozilla:nss:3.7:*:*:*:*:*:*:*

cpe:2.3:a:mozilla:nss:3.7.1:*:*:*:*:*:*:*

cpe:2.3:a:mozilla:nss:3.7.2:*:*:*:*:*:*:*

cpe:2.3:a:mozilla:nss:3.7.3:*:*:*:*:*:*:*

cpe:2.3:a:mozilla:nss:3.7.5:*:*:*:*:*:*:*

cpe:2.3:a:mozilla:nss:3.7.7:*:*:*:*:*:*:*

cpe:2.3:a:mozilla:nss:3.8:*:*:*:*:*:*:*

cpe:2.3:a:mozilla:nss:3.9:*:*:*:*:*:*:*

cpe:2.3:a:mozilla:nss:3.9.5:*:*:*:*:*:*:*

cpe:2.3:a:mozilla:nss:3.10:*:*:*:*:*:*:*

cpe:2.3:a:mozilla:nss:3.11.2:*:*:*:*:*:*:*

cpe:2.3:a:mozilla:nss:3.11.4:*:*:*:*:*:*:*

cpe:2.3:a:mozilla:nss:3.11.7:*:*:*:*:*:*:*

cpe:2.3:a:mozilla:nss:3.11.8:*:*:*:*:*:*:*

cpe:2.3:a:mozilla:nss:3.12:*:*:*:*:*:*:*

cpe:2.3:a:mozilla:nss:3.12.1:*:*:*:*:*:*:*

cpe:2.3:a:mozilla:nss:*:*:*:*:*:*:*:*

Configuration 2

OR

cpe:2.3:a:openssl:openssl:0.9.8:*:*:*:*:*:*:*

cpe:2.3:a:openssl:openssl:0.9.8a:*:*:*:*:*:*:*

cpe:2.3:a:openssl:openssl:0.9.8b:*:*:*:*:*:*:*

cpe:2.3:a:openssl:openssl:0.9.8c:*:*:*:*:*:*:*

cpe:2.3:a:openssl:openssl:0.9.8d:*:*:*:*:*:*:*

cpe:2.3:a:openssl:openssl:0.9.8e:*:*:*:*:*:*:*

cpe:2.3:a:openssl:openssl:0.9.8f:*:*:*:*:*:*:*

cpe:2.3:a:openssl:openssl:0.9.8g:*:*:*:*:*:*:*

cpe:2.3:a:openssl:openssl:0.9.8h:*:*:*:*:*:*:*

cpe:2.3:a:openssl:openssl:0.9.8i:*:*:*:*:*:*:*

cpe:2.3:a:openssl:openssl:0.9.8j:*:*:*:*:*:*:*

cpe:2.3:a:openssl:openssl:0.9.8k:*:*:*:*:*:*:*

Configuration 3

OR

cpe:2.3:a:gnu:gnutls:1.0.16:*:*:*:*:*:*:*

cpe:2.3:a:gnu:gnutls:1.0.17:*:*:*:*:*:*:*

cpe:2.3:a:gnu:gnutls:1.0.18:*:*:*:*:*:*:*

cpe:2.3:a:gnu:gnutls:1.0.19:*:*:*:*:*:*:*

cpe:2.3:a:gnu:gnutls:1.0.20:*:*:*:*:*:*:*

cpe:2.3:a:gnu:gnutls:1.0.21:*:*:*:*:*:*:*

cpe:2.3:a:gnu:gnutls:1.0.22:*:*:*:*:*:*:*

cpe:2.3:a:gnu:gnutls:1.0.23:*:*:*:*:*:*:*

cpe:2.3:a:gnu:gnutls:1.0.24:*:*:*:*:*:*:*

cpe:2.3:a:gnu:gnutls:1.0.25:*:*:*:*:*:*:*

cpe:2.3:a:gnu:gnutls:1.1.13:*:*:*:*:*:*:*

cpe:2.3:a:gnu:gnutls:1.1.14:*:*:*:*:*:*:*

cpe:2.3:a:gnu:gnutls:1.1.15:*:*:*:*:*:*:*

cpe:2.3:a:gnu:gnutls:1.1.16:*:*:*:*:*:*:*

cpe:2.3:a:gnu:gnutls:1.1.17:*:*:*:*:*:*:*

cpe:2.3:a:gnu:gnutls:1.1.18:*:*:*:*:*:*:*

cpe:2.3:a:gnu:gnutls:1.1.19:*:*:*:*:*:*:*

cpe:2.3:a:gnu:gnutls:1.1.20:*:*:*:*:*:*:*

cpe:2.3:a:gnu:gnutls:1.1.21:*:*:*:*:*:*:*

cpe:2.3:a:gnu:gnutls:1.1.22:*:*:*:*:*:*:*

cpe:2.3:a:gnu:gnutls:1.1.23:*:*:*:*:*:*:*

cpe:2.3:a:gnu:gnutls:1.2.0:*:*:*:*:*:*:*

cpe:2.3:a:gnu:gnutls:1.2.1:*:*:*:*:*:*:*

cpe:2.3:a:gnu:gnutls:1.2.2:*:*:*:*:*:*:*

cpe:2.3:a:gnu:gnutls:1.2.3:*:*:*:*:*:*:*

cpe:2.3:a:gnu:gnutls:1.2.4:*:*:*:*:*:*:*

cpe:2.3:a:gnu:gnutls:1.2.5:*:*:*:*:*:*:*

cpe:2.3:a:gnu:gnutls:1.2.6:*:*:*:*:*:*:*

cpe:2.3:a:gnu:gnutls:1.2.7:*:*:*:*:*:*:*

cpe:2.3:a:gnu:gnutls:1.2.8:*:*:*:*:*:*:*

cpe:2.3:a:gnu:gnutls:1.2.8.1a1:*:*:*:*:*:*:*

cpe:2.3:a:gnu:gnutls:1.2.9:*:*:*:*:*:*:*

cpe:2.3:a:gnu:gnutls:1.2.10:*:*:*:*:*:*:*

cpe:2.3:a:gnu:gnutls:1.2.11:*:*:*:*:*:*:*

cpe:2.3:a:gnu:gnutls:1.3.0:*:*:*:*:*:*:*

cpe:2.3:a:gnu:gnutls:1.3.1:*:*:*:*:*:*:*

cpe:2.3:a:gnu:gnutls:1.3.2:*:*:*:*:*:*:*

cpe:2.3:a:gnu:gnutls:1.3.3:*:*:*:*:*:*:*

cpe:2.3:a:gnu:gnutls:1.3.4:*:*:*:*:*:*:*

cpe:2.3:a:gnu:gnutls:1.3.5:*:*:*:*:*:*:*

cpe:2.3:a:gnu:gnutls:1.4.0:*:*:*:*:*:*:*

cpe:2.3:a:gnu:gnutls:1.4.1:*:*:*:*:*:*:*

cpe:2.3:a:gnu:gnutls:1.4.2:*:*:*:*:*:*:*

cpe:2.3:a:gnu:gnutls:1.4.3:*:*:*:*:*:*:*

cpe:2.3:a:gnu:gnutls:1.4.4:*:*:*:*:*:*:*

cpe:2.3:a:gnu:gnutls:1.4.5:*:*:*:*:*:*:*

cpe:2.3:a:gnu:gnutls:1.5.0:*:*:*:*:*:*:*

cpe:2.3:a:gnu:gnutls:1.5.1:*:*:*:*:*:*:*

cpe:2.3:a:gnu:gnutls:1.5.2:*:*:*:*:*:*:*

cpe:2.3:a:gnu:gnutls:1.5.3:*:*:*:*:*:*:*

cpe:2.3:a:gnu:gnutls:1.5.4:*:*:*:*:*:*:*

cpe:2.3:a:gnu:gnutls:1.5.5:*:*:*:*:*:*:*

cpe:2.3:a:gnu:gnutls:1.6.0:*:*:*:*:*:*:*

cpe:2.3:a:gnu:gnutls:1.6.1:*:*:*:*:*:*:*

cpe:2.3:a:gnu:gnutls:1.6.2:*:*:*:*:*:*:*

cpe:2.3:a:gnu:gnutls:1.6.3:*:*:*:*:*:*:*

cpe:2.3:a:gnu:gnutls:1.7.0:*:*:*:*:*:*:*

cpe:2.3:a:gnu:gnutls:1.7.1:*:*:*:*:*:*:*

cpe:2.3:a:gnu:gnutls:1.7.2:*:*:*:*:*:*:*

cpe:2.3:a:gnu:gnutls:1.7.3:*:*:*:*:*:*:*

cpe:2.3:a:gnu:gnutls:1.7.4:*:*:*:*:*:*:*

cpe:2.3:a:gnu:gnutls:1.7.5:*:*:*:*:*:*:*

cpe:2.3:a:gnu:gnutls:1.7.6:*:*:*:*:*:*:*

cpe:2.3:a:gnu:gnutls:1.7.7:*:*:*:*:*:*:*

cpe:2.3:a:gnu:gnutls:1.7.8:*:*:*:*:*:*:*

cpe:2.3:a:gnu:gnutls:1.7.9:*:*:*:*:*:*:*

cpe:2.3:a:gnu:gnutls:1.7.10:*:*:*:*:*:*:*

cpe:2.3:a:gnu:gnutls:1.7.11:*:*:*:*:*:*:*

cpe:2.3:a:gnu:gnutls:1.7.12:*:*:*:*:*:*:*

cpe:2.3:a:gnu:gnutls:1.7.13:*:*:*:*:*:*:*

cpe:2.3:a:gnu:gnutls:1.7.14:*:*:*:*:*:*:*

cpe:2.3:a:gnu:gnutls:1.7.15:*:*:*:*:*:*:*

cpe:2.3:a:gnu:gnutls:1.7.16:*:*:*:*:*:*:*

cpe:2.3:a:gnu:gnutls:1.7.17:*:*:*:*:*:*:*

cpe:2.3:a:gnu:gnutls:1.7.18:*:*:*:*:*:*:*

cpe:2.3:a:gnu:gnutls:1.7.19:*:*:*:*:*:*:*

cpe:2.3:a:gnu:gnutls:2.0.0:*:*:*:*:*:*:*

cpe:2.3:a:gnu:gnutls:2.0.1:*:*:*:*:*:*:*

cpe:2.3:a:gnu:gnutls:2.0.2:*:*:*:*:*:*:*

cpe:2.3:a:gnu:gnutls:2.0.3:*:*:*:*:*:*:*

cpe:2.3:a:gnu:gnutls:2.0.4:*:*:*:*:*:*:*

cpe:2.3:a:gnu:gnutls:2.1.0:*:*:*:*:*:*:*

cpe:2.3:a:gnu:gnutls:2.1.1:*:*:*:*:*:*:*

cpe:2.3:a:gnu:gnutls:2.1.2:*:*:*:*:*:*:*

cpe:2.3:a:gnu:gnutls:2.1.3:*:*:*:*:*:*:*

cpe:2.3:a:gnu:gnutls:2.1.4:*:*:*:*:*:*:*

cpe:2.3:a:gnu:gnutls:2.1.5:*:*:*:*:*:*:*

cpe:2.3:a:gnu:gnutls:2.1.6:*:*:*:*:*:*:*

cpe:2.3:a:gnu:gnutls:2.1.7:*:*:*:*:*:*:*

cpe:2.3:a:gnu:gnutls:2.1.8:*:*:*:*:*:*:*

cpe:2.3:a:gnu:gnutls:2.2.0:*:*:*:*:*:*:*

cpe:2.3:a:gnu:gnutls:2.2.1:*:*:*:*:*:*:*

cpe:2.3:a:gnu:gnutls:2.2.2:*:*:*:*:*:*:*

cpe:2.3:a:gnu:gnutls:2.2.3:*:*:*:*:*:*:*

cpe:2.3:a:gnu:gnutls:2.2.4:*:*:*:*:*:*:*

cpe:2.3:a:gnu:gnutls:2.2.5:*:*:*:*:*:*:*

cpe:2.3:a:gnu:gnutls:2.3.0:*:*:*:*:*:*:*

cpe:2.3:a:gnu:gnutls:2.3.1:*:*:*:*:*:*:*

cpe:2.3:a:gnu:gnutls:2.3.2:*:*:*:*:*:*:*

cpe:2.3:a:gnu:gnutls:2.3.3:*:*:*:*:*:*:*

cpe:2.3:a:gnu:gnutls:2.3.4:*:*:*:*:*:*:*

cpe:2.3:a:gnu:gnutls:2.3.5:*:*:*:*:*:*:*

cpe:2.3:a:gnu:gnutls:2.3.6:*:*:*:*:*:*:*

cpe:2.3:a:gnu:gnutls:2.3.7:*:*:*:*:*:*:*

cpe:2.3:a:gnu:gnutls:2.3.8:*:*:*:*:*:*:*

cpe:2.3:a:gnu:gnutls:2.3.9:*:*:*:*:*:*:*

cpe:2.3:a:gnu:gnutls:2.3.10:*:*:*:*:*:*:*

cpe:2.3:a:gnu:gnutls:2.3.11:*:*:*:*:*:*:*

cpe:2.3:a:gnu:gnutls:2.4.0:*:*:*:*:*:*:*

cpe:2.3:a:gnu:gnutls:2.4.1:*:*:*:*:*:*:*

cpe:2.3:a:gnu:gnutls:2.4.2:*:*:*:*:*:*:*

cpe:2.3:a:gnu:gnutls:2.5.0:*:*:*:*:*:*:*

cpe:2.3:a:gnu:gnutls:2.6.0:*:*:*:*:*:*:*

cpe:2.3:a:gnu:gnutls:2.6.1:*:*:*:*:*:*:*

cpe:2.3:a:gnu:gnutls:2.6.2:*:*:*:*:*:*:*

cpe:2.3:a:gnu:gnutls:*:*:*:*:*:*:*:* versions up to 2.6.3 (inclusive)

cpe:2.3:a:gnu:gnutls:2.7.4:*:*:*:*:*:*:*

Tenable Plugins

View all (72 total)

IDNameProductFamilySeverity
127177NewStart CGSL CORE 5.04 / MAIN 5.04 : openssl098e Multiple Vulnerabilities (NS-SA-2019-0020)NessusNewStart CGSL Local Security Checks
critical
124999EulerOS Virtualization 3.0.1.0 : openssl (EulerOS-SA-2019-1546)NessusHuawei Local Security Checks
medium
89745VMware ESX Multiple Vulnerabilities (VMSA-2010-0019) (remote check)NessusVMware ESX Local Security Checks
high
89742VMware ESX Multiple Vulnerabilities (VMSA-2010-0015) (remote check)NessusVMware ESX Local Security Checks
critical
89740VMware ESX / ESXi Third-Party Libraries and Components (VMSA-2010-0009) (remote check)NessusVMware ESX Local Security Checks
critical
89735VMware ESX Third-Party Libraries Multiple Vulnerabilities (VMSA-2010-0001) (remote check)NessusVMware ESX Local Security Checks
critical
79532OracleVM 3.2 : onpenssl (OVMSA-2014-0008)NessusOracleVM Local Security Checks
critical
79531OracleVM 2.2 : openssl (OVMSA-2014-0007)NessusOracleVM Local Security Checks
critical
78200F5 Networks BIG-IP : MD2 Message-Digest Algorithm vulnerability (SOL15663)NessusF5 Networks Local Security Checks
medium
68020Oracle Linux 5 : gnutls (ELSA-2010-0166)NessusOracle Linux Local Security Checks
medium
68017Oracle Linux 3 / 4 : openssl (ELSA-2010-0163)NessusOracle Linux Local Security Checks
medium
67989Oracle Linux 5 : openssl (ELSA-2010-0054)NessusOracle Linux Local Security Checks
medium
67960Oracle Linux 5 : java-1.6.0-openjdk (ELSA-2009-1584)NessusOracle Linux Local Security Checks
critical
67924Oracle Linux 3 : seamonkey (ELSA-2009-1432)NessusOracle Linux Local Security Checks
critical
67923Oracle Linux 4 : seamonkey (ELSA-2009-1431)NessusOracle Linux Local Security Checks
critical
67902Oracle Linux 4 / 5 : nspr / nss (ELSA-2009-1184)NessusOracle Linux Local Security Checks
high
67075CentOS 5 : java-1.6.0-openjdk (CESA-2009:1584)NessusCentOS Local Security Checks
critical
65117Ubuntu 8.04 LTS / 8.10 / 9.04 : nss regression (USN-810-3)NessusUbuntu Local Security Checks
high
63889RHEL 5 : nspr and nss (RHSA-2009:1207)NessusRed Hat Local Security Checks
high
63888RHEL 4 : nspr and nss (RHSA-2009:1190)NessusRed Hat Local Security Checks
high
60758Scientific Linux Security Update : openssl on SL3.x, SL4.x i386/x86_64NessusScientific Linux Local Security Checks
medium
60752Scientific Linux Security Update : gnutls on SL4.x, SL5.x i386/x86_64NessusScientific Linux Local Security Checks
high
60725Scientific Linux Security Update : openssl on SL5.x i386/x86_64NessusScientific Linux Local Security Checks
medium
60691Scientific Linux Security Update : java (jdk 1.6.0) on SL4.x, SL5.x i386/x86_64NessusScientific Linux Local Security Checks
high
60665Scientific Linux Security Update : seamonkey on SL3.x, SL4.x i386/x86_64NessusScientific Linux Local Security Checks
critical
60632Scientific Linux Security Update : nspr and nss for SL 5.x on i386/x86_64NessusScientific Linux Local Security Checks
high
60631Scientific Linux Security Update : nspr and nss for SL 4.x on i386/x86_64NessusScientific Linux Local Security Checks
high
17765OpenSSL < 0.9.8l Multiple VulnerabilitiesNessusWeb Servers
medium
53539RHEL 4 : Sun Java Runtime in Satellite Server (RHSA-2009:1662)NessusRed Hat Local Security Checks
critical
51077VMSA-2010-0019 : VMware ESX third-party updates for Service ConsoleNessusVMware ESX Local Security Checks
high
49703VMSA-2010-0015 : VMware ESX third-party updates for Service ConsoleNessusVMware ESX Local Security Checks
critical
48153Mandriva Linux Security Advisory : openssl (MDVSA-2009:239)NessusMandriva Local Security Checks
medium
46765VMSA-2010-0009 : ESXi ntp and ESX Service Console third-party updatesNessusVMware ESX Local Security Checks
critical
46277RHEL 5 : gnutls (RHSA-2010:0166)NessusRed Hat Local Security Checks
medium
46274RHEL 3 / 4 : openssl (RHSA-2010:0163)NessusRed Hat Local Security Checks
medium
46176Mandriva Linux Security Advisory : java-1.6.0-openjdk (MDVSA-2010:084)NessusMandriva Local Security Checks
high
45365CentOS 5 : gnutls (CESA-2010:0166)NessusCentOS Local Security Checks
medium
45346CentOS 3 / 4 : openssl (CESA-2010:0163)NessusCentOS Local Security Checks
medium
44800Debian DSA-1935-1 : gnutls13 gnutls26 - several vulnerabilitiesNessusDebian Local Security Checks
high
44753Debian DSA-1888-1 : openssl, openssl097 - cryptographic weaknessNessusDebian Local Security Checks
medium
44739Debian DSA-1874-1 : nss - several vulnerabilitiesNessusDebian Local Security Checks
high
44097CentOS 5 : openssl (CESA-2010:0054)NessusCentOS Local Security Checks
medium
44063RHEL 5 : openssl (RHSA-2010:0054)NessusRed Hat Local Security Checks
medium
43826VMSA-2010-0001 : ESX Service Console and vMA updates for nss and nsprNessusVMware ESX Local Security Checks
critical
42996Mandriva Linux Security Advisory : openssl (MDVSA-2009:310)NessusMandriva Local Security Checks
medium
42968GLSA-200912-01 : OpenSSL: Multiple vulnerabilitiesNessusGentoo Local Security Checks
medium
42926openSUSE Security Update : java-1_6_0-openjdk (java-1_6_0-openjdk-1613)NessusSuSE Local Security Checks
high
42923openSUSE Security Update : java-1_6_0-openjdk (java-1_6_0-openjdk-1613)NessusSuSE Local Security Checks
high
42921openSUSE Security Update : java-1_6_0-openjdk (java-1_6_0-openjdk-1613)NessusSuSE Local Security Checks
high
42834GLSA-200911-02 : Sun JDK/JRE: Multiple vulnerabilitiesNessusGentoo Local Security Checks
critical
42828RHEL 5 : java-1.6.0-openjdk (RHSA-2009:1584)NessusRed Hat Local Security Checks
critical
42817Ubuntu 8.10 / 9.04 / 9.10 : openjdk-6 vulnerabilities (USN-859-1)NessusUbuntu Local Security Checks
critical
42806Fedora 10 : java-1.6.0-openjdk-1.6.0.0-23.b16.fc10 (2009-11490)NessusFedora Local Security Checks
high
42805Fedora 12 : java-1.6.0-openjdk-1.6.0.0-33.b16.fc12 (2009-11489)NessusFedora Local Security Checks
high
42802Fedora 11 : java-1.6.0-openjdk-1.6.0.0-30.b16.fc11 (2009-11486)NessusFedora Local Security Checks
high
42455RHEL 4 / 5 : java-1.5.0-sun (RHSA-2009:1571)NessusRed Hat Local Security Checks
critical
42431RHEL 4 / 5 : java-1.6.0-sun (RHSA-2009:1560)NessusRed Hat Local Security Checks
critical
42434Mac OS X 10.6.x < 10.6.2 Multiple VulnerabilitiesNessusMacOS X Local Security Checks
critical
42433Mac OS X Multiple Vulnerabilities (Security Update 2009-006)NessusMacOS X Local Security Checks
critical
42062Mandriva Linux Security Advisory : openssl (MDVSA-2009:258)NessusMandriva Local Security Checks
medium
41030Mandriva Linux Security Advisory : openssl (MDVSA-2009:238)NessusMandriva Local Security Checks
medium
40981Ubuntu 6.06 LTS / 8.04 LTS / 8.10 / 9.04 : openssl vulnerability (USN-830-1)NessusUbuntu Local Security Checks
medium
40934CentOS 3 : seamonkey (CESA-2009:1432)NessusCentOS Local Security Checks
critical
40933CentOS 4 : seamonkey (CESA-2009:1431)NessusCentOS Local Security Checks
critical
40923RHEL 3 : seamonkey (RHSA-2009:1432)NessusRed Hat Local Security Checks
critical
40922RHEL 4 : seamonkey (RHSA-2009:1431)NessusRed Hat Local Security Checks
critical
40656Ubuntu 6.06 LTS / 8.04 LTS / 8.10 / 9.04 : gnutls12, gnutls13, gnutls26 vulnerabilities (USN-809-1)NessusUbuntu Local Security Checks
high
40522Mandriva Linux Security Advisory : nss (MDVSA-2009:197-3)NessusMandriva Local Security Checks
high
40491Ubuntu 8.04 LTS / 8.10 / 9.04 : nspr update (USN-810-2)NessusUbuntu Local Security Checks
high
40490Ubuntu 8.04 LTS / 8.10 / 9.04 : nss vulnerabilities (USN-810-1)NessusUbuntu Local Security Checks
high
40441RHEL 5 : nspr and nss (RHSA-2009:1186)NessusRed Hat Local Security Checks
high
40439RHEL 4 : nspr and nss (RHSA-2009:1184)NessusRed Hat Local Security Checks
high